Hello,
We have a phone at the minute we would like to get a Full Physical dump of data from, Cellebrite has three options (ADB and Bootloader) but neither work due to the Firmware revision. Their Advanced services (CAS) is exclusively available to law enforcement so the only potential we have got for this is to root it.
In researching this I have seen an awful lot of guides that all seem to say about wiping the data. This obviously is no good. What would the community suggest for this type of scenario and the most cautious actions to take?
Thank you!
I know a solution for your problem, I sent you a PM.
Thank you for the reply, you have sent me useful information, but I am still open to any other solution.
By the time of writing (now )), rooting would lead to user data loss. I would be happy if somebody could prove me wrong regarding this issue…
Hello Elliot,
i had same problem as you describe with samsung phones and UFED4PC.
Android Version was to high to get physical dump via physical dump (boodloader) with UFED.
My solution was EFT dongle !
With EFT-dongle i rooted until now some Samsungphones (S6, S7) with Android 7.0 without problem, and without data loss!
Latest version supports 8.0 too - but i have not tested yet.
1) in developermode tick "OEM unlock" (so flash boot.img without blocked by frp is possible)
2) extract boot.img from same firmware (original) as the phone has
3) EFT dongle can modify the original boot.img (root inject)
4) flash the result "boot.eft" in downloadmode with EFT
5) after boot you have root-access and you can aquire the phone with UFED and option physical - adb (rooted) !
6) after aquisition with UFED you reboot phone again in downloadmode and reflash the original boot.img !!!
7) Now FRP is on again - root access gone…
BR
There is eng root file available for 8.0 firmware, binary 2 if i remember correctly. http//
My solution was EFT dongle !
With EFT-dongle i rooted until now some Samsungphones (S6, S7) with Android 7.0 without problem, and without data loss!
Latest version supports 8.0 too - but i have not tested yet.
What is the EFT dongle? What is its purpose? Is this a a dongle Cellebrite supplies?
What is the EFT dongle? What is its purpose? Is this a a dongle Cellebrite supplies?
JFYI
http//
jaclaz
US not listed in places to order that.
Amazon has some, but that particular one has a really great following of people and advice.
Not sure how it would affect investigations.
1) in developermode tick "OEM unlock" (so flash boot.img without blocked by frp is possible)
I wonder how you do that with a locked phone, with secure startup enabled ?!